all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Domain of Thrones: Part II

Add to bookmarks
Nov. 6, 2023, 4:51 p.m. | Joshua Prager

Security Boulevard securityboulevard.com


Written by Nico Shyne & Josh Prager


Introduction Part II


In the first installment of “Domain of Thrones,” we meticulously explored an array of six distinctive domain persistence techniques:



  • Credential Theft on the Domain Controller (DC)

  • NTDS Access

  • DCSync

  • Golden Ticket

  • Diamond Ticket

  • Active Directory Certificate Services (AD CS)


These adversarial methods facilitate an elevated level of access to the targeted domains, thereby challenging the defenders with a considerably strenuous eviction and remediation process.


Our initial post ended …

access active directory adversarial amp array blue team certificate certificate services controller credential credential theft cybersecurity detection engineering diamond diamond ticket directory domain domain controller golden golden ticket infosec introduction josh persistence services techniques theft threat hunting thrones ticket written

Visit resource

More from securityboulevard.com / Security Boulevard

USENIX Security ’23 – Controlled Data Races In Enclaves: Attacks And Detection 9 hours ago | securityboulevard.com
access attacks authors channel +16
What is Secure Code Review and How to Conduct it? 17 hours ago | securityboulevard.com
application assurance automated cloud security +19
Why Bot Management Should Be a Crucial Element of Your Marketing Strategy 1 day, 1 hour ago | securityboulevard.com
address advanced bot protection analytics application security +15
Cloud Monitor Identifies and Remediates Problematic VPN Use in K-12 Districts 1 day, 2 hours ago | securityboulevard.com
chief cloud cybersecurity director +24
Brothers Indicted for Stealing $25 Million of Ethereum in 12 Seconds 1 day, 4 hours ago | securityboulevard.com
blockchain cryptocurrency crypto scam cyberlaw +24
Votiro Keeps Up the Momentum in 2024 1 day, 4 hours ago | securityboulevard.com
blog momentum security security boulevard +1
Novel Threat Tactics, Notable Vulnerabilities, and Current Trends for April 2024 1 day, 5 hours ago | securityboulevard.com
april blog posts center clients +32
USENIX Security ’23 – AEX-Notify: Thwarting Precise Single-Stepping Attacks Through Interrupt Awareness For Intel SGX … 1 day, 5 hours ago | securityboulevard.com
access attacks authors awareness +15
North Korea IT Worker Scam Brings Malware and Funds Nukes 1 day, 6 hours ago | securityboulevard.com
analytics & intelligence api security appsec careers +60

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

COMM Penetration Tester (PenTest-2), Chantilly, VA OS&CI Job #368

@ Allen Integrated Solutions | Chantilly, Virginia, United States
View on infosec-jobs.com

Consultant Sécurité SI H/F Gouvernance - Risques - Conformité

@ Hifield | Sèvres, France
View on infosec-jobs.com

Infrastructure Consultant

@ Telefonica Tech | Belfast, United Kingdom
View on infosec-jobs.com